User's manual. Section 3.

CERTS(3): certificates for authentication


DESCRIPTION

Clive uses public key encryption in order to authenticate clients and servers. In the server machine, the server's private key must be stored in $HOME/.ssh/server.key (PEM encoding) and the client's autosigned X.509 certificate must be stored in $HOME/.ssh/client.pem. In the client machine, the private key must be stored in $HOME/.ssh/client.key and the server's certificate must be stored in $HOME/.ssh/server.pem.

The private key and the certificate with the public key can be generated with openssl. For example, in the server:

The web(1) command uses /zx/lib/webkey.pem for the private key and /zx/lib/webcert.pem for the certificate, for TLS connections.

SEE ALSO


User's manual. Section 3.